Please use this identifier to cite or link to this item:
https://elibrary.tucl.edu.np/handle/123456789/4126
Title: | Blocking SQL Injection in Database Stored Procedures |
Authors: | Manandhar, Sanu |
Keywords: | stored procedures;technique |
Issue Date: | 2010 |
Publisher: | Department of Computer Science and Information Technology |
Institute Name: | Central Department of Computer Science and Information Technology |
Level: | Masters |
Abstract: | Web application is described as an application accessible by the web through a network. SQL injection is an attack method used by hackers to retrieve, manipulate,fabricate or delete information in organizations’ relational databases through web applications. Information processed by web applications has become critical tocorporations, customers, organizations, and countries. Several research papers in literature have proposed ways to prevent SQL injection attacks in the application layer by examining dynamic SQL query semantics a trun time. However, very little emphasis is laid on securing stored procedures which could also suffer from SQL injection attacks. Some research papers in literature even refer to stored procedures as a remedy against SQL injection attacks. As storedprocedures reside on the database front, the methods proposed by them cannot beapplied to secure stored procedures themselves. In this research paper, we propose a technique to defend against the attacks targeted at stored procedures. |
URI: | http://elibrary.tucl.edu.np/handle/123456789/4126 |
Appears in Collections: | Computer Science & Information Technology |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
Cover Page(8).pdf | 31.66 kB | Adobe PDF | View/Open | |
Chapter Page(1).pdf | 387.64 kB | Adobe PDF | View/Open |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.